Legal claims defining the scope of protection, as filed with the USPTO.
1. A method comprising, by a computer system: receiving a transmission comprising a container that encapsulates: an encrypted payload, wherein the encrypted payload has been encrypted via a first symmetric key; and a second symmetric key; generating a recipient header comprising metadata related to the encrypted payload; transmitting the recipient header to an authentication server so as to initiate pre-access authentication using a particular authentication header relating to the transmission, the particular authentication header comprising: a third symmetric key that is distinct from the first symmetric key and the second symmetric key; and an author header that has been encrypted via the third symmetric key, the author header comprising an encrypted subportion that has been encrypted via the second symmetric key, the encrypted subportion comprising the first symmetric key; responsive to the transmitting, receiving an encrypted package from the authentication server, wherein the encrypted package has been encrypted via a public asymmetric key associated with the recipient, the encrypted package comprising the encrypted subportion; decrypting the encrypted package via a private asymmetric key associated with the computer system; decrypting the first symmetric key from the encrypted subportion via the second symmetric key; and decrypting the encrypted payload via the decrypted first symmetric key.
2. The method of claim 1 , wherein the received transmission comprises at least a portion of the metadata related to the encrypted payload.
3. The method of claim 1 , wherein the recipient header comprises user credentials associated with the computer system.
4. The method of claim 1 , wherein the recipient header comprises the public asymmetric key associated with the computer system.
5. The method of claim 1 , wherein receipt of the encrypted package is indicative of successful authentication by the authentication server.
6. A computer system comprising a processor and memory, wherein the processor and memory in combination are operable to perform a method comprising: receiving a transmission comprising a container that encapsulates: an encrypted payload, wherein the encrypted payload has been encrypted via a first symmetric key; and a second symmetric key; generating a recipient header comprising metadata related to the encrypted payload; transmitting the recipient header to an authentication server so as to initiate pre-access authentication using a particular authentication header relating to the transmission, the particular authentication header comprising: a third symmetric key that is distinct from the first symmetric key and the second symmetric key; and an author header that has been encrypted via the third symmetric key, the author header comprising an encrypted subportion that has been encrypted via the second symmetric key, the encrypted subportion comprising the first symmetric key; responsive to the transmitting, receiving an encrypted package from the authentication server, wherein the encrypted package has been encrypted via a public asymmetric key associated with the recipient, the encrypted package comprising the encrypted subportion; decrypting the encrypted package via a private asymmetric key associated with the computer system; decrypting the first symmetric key from the encrypted subportion via the second symmetric key; and decrypting the encrypted payload via the decrypted first symmetric key.
7. The computer system of claim 6 , wherein the received transmission comprises at least a portion of the metadata related to the encrypted payload.
8. The computer system of claim 6 , wherein the recipient header comprises user credentials associated with the computer system.
9. The computer system of claim 6 , wherein the recipient header comprises the public asymmetric key associated with the computer system.
10. The computer system of claim 6 , wherein receipt of the encrypted package is indicative of successful authentication by the authentication server.
11. A computer-program product comprising a non-transitory computer-usable medium having computer-readable program code embodied therein, the computer-readable program code adapted to be executed to implement a method performed by a computer system, the method comprising: receiving a transmission comprising a container that encapsulates: an encrypted payload, wherein the encrypted payload has been encrypted via a first symmetric key; and a second symmetric key; generating a recipient header comprising metadata related to the encrypted payload; transmitting the recipient header to an authentication server so as to initiate pre-access authentication using a particular authentication header relating to the transmission, the particular authentication header comprising: a third symmetric key that is distinct from the first symmetric key and the second symmetric key; and an author header that has been encrypted via the third symmetric key, the author header comprising an encrypted subportion that has been encrypted via the second symmetric key, the encrypted subportion comprising the first symmetric key; responsive to the transmitting, receiving an encrypted package from the authentication server, wherein the encrypted package has been encrypted via a public asymmetric key associated with the recipient, the encrypted package comprising the encrypted subportion; decrypting the encrypted package via a private asymmetric key associated with the computer system; decrypting the first symmetric key from the encrypted subportion via the second symmetric key; and decrypting the encrypted payload via the decrypted first symmetric key.
12. The computer-program product of claim 11 , wherein the received transmission comprises at least a portion of the metadata related to the encrypted payload.
13. The computer-program product of claim 11 , wherein the recipient header comprises user credentials associated with the computer system.
14. The computer-program product of claim 11 , wherein the recipient header comprises the public asymmetric key associated with the computer system.
15. The computer-program product of claim 11 , wherein receipt of the encrypted package is indicative of successful authentication by the authentication server.
Unknown
December 3, 2019
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.